Security Analyst with German

Being in a development stage of the collaboration, we’re enjoying a growing team with diverse skills, from DevOps Engineers and Application Management Engineers to Observability Engineers and Security Engineers. In terms of efficiency, our core is focused on strong communication, both within the team and with our peers from customer side. We’re ready to support ramp-ups and deliveries, as well as facilitate sustainable learning paths for each member. All in all, we strive to enjoy the work we do, both individually and as a team.

The customer treats us as consultants/partners who can help them innovate their existing processes, tools and initiatives.

The Security Analyst serves as an indispensable asset to our SOC team, contributing to our organization's cybersecurity endeavors with a blend of seasoned expertise in threat monitoring and detection, coupled with a fervent drive to cultivate proficiency in incident response. Through their dedication and adaptability, they play a central role in fortifying our security posture and safeguarding our digital assets against evolving threats.

You will have an impact on the project’s evolution, as well as the chance to contribute with your own ideas and expertise in building a successful relation with the client.

We are looking for a German speaker Senior Security Analyst to support us with our Security Operations opportunities and the internal Security Operations Center (SOC) environment. This role focuses on testing, developing, and validating security monitoring and incident response capabilities.

The ideal candidate has strong hands-on experience with SIEM/EDR platforms, can create and validate use cases, and contribute to improving detection and response maturity across different environments.

The role will have a split responsibility between client delivery and internal SOC development/research.

Responsibilities:

POC Development & Testing: Develop, tune, and document detection rules and playbooks; Test and simulate security events to validate use cases (e.g. brute force, phishing, malware execution, port scanning, exfiltration attempts).

Threat Detection & Incident Response: Analyze security alerts and correlate events across multiple tools; Perform initial triage and investigations for incidents during POCs; Provide remediation recommendations and assist with containment during test incidents.

Collaboration & Knowledge Sharing; Contribute to reporting and documentation of POC outcomes; Share knowledge with team members and help improve detection strategies.